CVE-2014-5854
The CVE-2014-5854 entry concerns the Windows Live Hotmail PUSH mail app (com.clearhub.wl) for Android, version 1.00.97, which does not verify X.509 certificates from SSL servers. This allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. T...